Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
kasperskyKaspersky LabKLA12598
HistoryJul 29, 2022 - 12:00 a.m.

KLA12598 Multiple vulnerabilities in Foxit Reader

2022-07-2900:00:00
Kaspersky Lab
threats.kaspersky.com
21

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

69.3%

JSON

Detect date:

07/29/2022

Severity:

High

Description:

Multiple vulnerabilities were found in Foxit Reader. Malicious users can exploit these vulnerabilities to cause denial of service, obtain sensitive information, execute arbitrary code.

Affected products:

Foxit PDF Reader earlier than 12.0.1

Solution:

Update to the latest version
Download Foxit Reader

Original advisories:

Security updates available in Foxit PDF Reader 12.0.1 and Foxit PDF Editor 12.0.1

Impacts:

ACE

Related products:

Foxit Reader

CVE-IDS:

CVE-2022-279447.5Critical
CVE-2022-269797.5Critical
CVE-2022-373835.5High
CVE-2022-373847.8Critical
CVE-2022-373777.8Critical
CVE-2022-373817.8Critical
CVE-2022-373877.8Critical
CVE-2022-373907.8Critical
CVE-2022-373795.5High
CVE-2022-373865.5High
CVE-2022-373887.8Critical
CVE-2022-273595.5High
CVE-2022-373763.3Warning
CVE-2022-373897.8Critical
CVE-2022-373857.8Critical
CVE-2022-373787.8Critical
CVE-2022-373805.5High
CVE-2022-373917.8Critical
CVE-2022-373825.5High

References

Related

nessus 4
cnvd 18
prion 19
zdi 16
cve 19
nessus
nessus
Foxit PDF Editor < 12.0.1 Multiple Vulnerabilities
2022-07-29 00:00:00
Foxit PDF Reader < 12.0.1 Multiple Vulnerabilities
2022-07-29 00:00:00
Foxit PDF Editor < 11.2.3 Multiple Vulnerabilities
2022-08-26 00:00:00
cnvd
cnvd
Foxit PDF Reader Resource Management Error Vulnerability (CNVD-2023-25120)
2023-03-31 00:00:00
Foxit PDF Editor Remote Code Execution Vulnerability (CNVD-2023-23560)
2023-03-31 00:00:00
Foxit PDF Reader Resource Management Error Vulnerability (CNVD-2023-25123)
2023-03-31 00:00:00
prion
prion
Type confusion
2023-03-29 19:15:00
Design/Logic Flaw
2023-03-29 19:15:00
Null pointer dereference
2022-05-05 19:15:00
zdi
zdi
Foxit PDF Reader Doc Object Out-Of-Bounds Read Information Disclosure Vulnerability
2022-08-05 00:00:00
Foxit PDF Reader AcroForm deletePages Use-After-Free Remote Code Execution Vulnerability
2022-08-05 00:00:00
Foxit PDF Reader Doc Object Use-After-Free Remote Code Execution Vulnerability
2022-08-05 00:00:00
cve
cve
CVE-2022-37383
2023-03-29 19:15:16
CVE-2022-37380
2023-03-29 19:15:15
CVE-2022-37387
2023-03-29 19:15:16

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.3 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.003 Low

EPSS

Percentile

69.3%

JSON
Related for KLA12598
nessus4cnvd18prion19zdi16cve19